A$ A' "A' ?GridIron IT is seeking an Information Systems Security Engineer local to the DC Metro Area Active Secret Clearance RequiredEducation Requirements: Bachelor's DegreeYears of Experience: 7+ yearsAs an Information System Security Engineer (ISSE), the Cybersecurity Engineer's role is to conduct information system security engineering activities, confirm that information security requirements are effectively implemented throughout the security architecting, design, development, configuration, and implementation processes. The ISSE will perform research system computer security, system exploitation, penetration testing, and software security assessment for applications. Responsible for capturing and refining information security requirements. Serve as an integral part of the development team designing and developing organizational information systems or upgrading legacy systems. Employs best practices when implementing security requirements within an information system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques. Insures (IDAM) Software Integration policy and oversight including: Username/password and PKI authentication, security access controls, limiting user access to any data at or below the security level assigned to the user's account, Monitor and restrict all network traffic, Encrypt all mission data at rest and in transit, require and force all data to be appropriately tagged in accordance with department guidance. Prepare SSPs, Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM), monthly and quarterly risk compliance reports. Has experience in AWS and vulnerability management leveraging tools including Tenable Nessus, DBProtect, WebInspect, ForeScoutBachelor's Degree and +7 years:-Experience hands with AWS-Experience conducting security control assessments and/or implementation using NIST SP 800-53 and NIST SP 800-53A Rev 4.-Experience running vulnerability and compliance scans using tools like tenable.sc, WebInspect, DBProtect, etc.-Strong communication skills, attention to detail, and being a self-starter.-Experience with High Value Asset (HVA) systems-Experience with cloud migration and working with FedRAMP solutions-Experience in Secure SDLC, working directly with project teams to advise on control implementation to meet NIST SP800-53 controls Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status.Gridiron IT is a Women Owned Small Business (WOSB) company specializing in IT Infrastructure, Cyber & Cloud Security, Software Development, and Enterprise Support. Gridiron is an Inc. 5000 2022 recipient and Washington Business Journal Fastest Growing Companies in the Greater Washington Area for 2022. Gridiron offers a competitive benefits package to include medical, dental, vision, 401(k), life insurance, disability insurance, and pet insurance.